Hi Art, Anne,
looks like the focus of the CORS specification is on very simple
access control that would just express that site A allows access to
content if the javascript stuff calls it from a thing found on site
B.
The workshop deals with conditions (policy) under which a certain
Hi all,
as the PAG chair of this XMLSEC PAG, let me tell you that support from the
industry in sorting this out was low so far. What I heard through the
grapevine was more or less: We know, but we can't tell you.
For the moment, W3C is asking for cost estimates to figure out what most of
Hi Art,
the pessimistic XMLSECPAG chair told you that it wouldn't resolve within days.
But I hope to have a clear view and plan by the end of January. Executing that
plan may take some time. Plan is to resolve until end of March, if everything
goes well. Well meaning a decision of the PAG and
Hi all,
Frederick is innocent!
My aim as PAG chair is to conclude by March. The solution is still open. We
don't know yet whether the algorithms used by XML SIG or ENC really violate
the declared patents. We will hopefully know until then.
I'm still waiting for one response from MIT but
On Wednesday 04 January 2012 09:19:51 Arthur Barstow wrote:
In case it isn't clear, I don't think anyone suggested the ECC stuff
should be deprecated. On the contrary, I think it makes sense for ECC
to be an algorithm for XMLDigSig1.1. However, some of us have advocated
the syntax be